[Bug 221866] [patch] ls -liTd in 100.chksetuid with large inodes will cause daily security run output to misreport setuid changes

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 30 Sep 2021 18:14:27 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=221866

Piotr Pawel Stefaniak <pstef@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |jlh@FreeBSD.org,
                   |                            |pstef@freebsd.org

--- Comment #1 from Piotr Pawel Stefaniak <pstef@freebsd.org> ---
I briefly looked at this today. I think the stat change is acceptable.

Or maybe I could try to implement a flag in diff that would ignore leading
blank characters and then we could use it via $security_status_diff_flags. This
is similar to hacking check_diff as you proposed, but more elegant.

I thought that using find's -ls was a very good idea due to the side effect of
decreasing the number of spawned processes. But since I saw the output I think
is too wide.

-- 
You are receiving this mail because:
You are the assignee for the bug.